Preparing server certificates

If you generate the certificates for one type of encryption, you do not need to
generate them again for the other: the same certificates are used for both.

All nodes must have all the relevant SSL certificates on all nodes. A keystore
contains private keys. The truststore contains SSL certificates for each node and
doesn't require signing by a trusted and recognized public certification
authority.

Procedure

Generate the private and public key pair for the nodes of the cluster leaving
the key password the same as the keystore password: